Description
Http-proxy is a proxying library. Because of the way errors are handled in versions before 0.7.0, an attacker that forces an error can crash the server, causing a denial of service.
Remediation
References
https://github.com/nodejitsu/node-http-proxy/pull/101
https://nodesecurity.io/advisories/323
Related Vulnerabilities
CVE-2016-6348 Vulnerability in maven package org.jboss.resteasy:resteasy-jackson-provider
CVE-2019-1003077 Vulnerability in maven package org.jenkins-ci.plugins:audit2db
CVE-2022-45206 Vulnerability in maven package org.jeecgframework.boot:jeecg-boot-base-core
CVE-2019-20363 Vulnerability in maven package org.igniterealtime.openfire:xmppserver
CVE-2020-9480 Vulnerability in maven package org.apache.spark:spark-network-common_2.11